A Malformed Input String to /cgi-bin/delete_CA on Grandstream GXP16xx VoIP 1.0.4.128 phones allows malicious users to delete configuration parameters and gain admin access to the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grandstream gxp1610 firmware 1.0.4.128 |
||
grandstream gxp1615 firmware 1.0.4.128 |
||
grandstream gxp1620 firmware 1.0.4.128 |
||
grandstream gxp1625 firmware 1.0.4.128 |
||
grandstream gxp1628 firmware 1.0.4.128 |
||
grandstream gxp1630 firmware 1.0.4.128 |